$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: cY/ewIsn0a95vBK6gR8NxcRuofRCCbS8Udt0p5Kye4c= Subject key identifier: 48:AD:FF:5B:2E:99:E7:D9:31:0D:38:FF:7E:C3:E8:48:60:2A:9A:0C Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1CB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1CA8 Signing time: Fri 22 Nov 2024 16:10:30 +0000 Manifest this update: Fri 22 Nov 2024 16:10:29 +0000 Manifest next update: Fri 29 Nov 2024 16:10:29 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: /Rmse1yToBy0ESevoMkz/lOvoY4/V+2sTRnee+RwIGs=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: XU2BtSx1XPF+OETuBQTO4A3xSlkRLbVqfxk4yTT8ml4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7347 (0x1cb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: Nov 22 16:10:29 2024 GMT Not After : Nov 29 16:10:29 2024 GMT Subject: CN=6740acf5-764c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e3:12:36:e2:8d:9a:ce:c2:55:b1:8b:48:3e: c9:ba:c5:cd:c6:e3:3c:68:8f:19:94:16:6c:eb:df: 24:d7:29:a2:90:67:51:6a:54:7c:d3:9b:30:d4:f2: 28:d9:27:ed:d7:94:c8:5d:7a:6c:76:e3:09:4d:78: fe:c0:14:12:3f:7c:01:f6:64:9f:1b:9a:76:c8:e4: d1:10:e0:7a:fa:40:3f:91:78:f9:e1:e6:79:3d:62: 9a:f9:fa:d3:d5:db:5e:72:4b:a4:72:b9:bb:85:10: df:56:35:a9:47:06:ea:7f:d1:be:89:5e:df:48:47: 18:7d:f9:69:c9:23:17:56:d6:0c:58:41:18:e1:62: a0:79:03:1c:f6:27:88:fc:d3:a1:b2:cb:66:0b:f9: 36:fb:8b:ed:69:b8:7e:e0:51:81:1f:b9:19:c0:9f: 27:14:f0:5c:00:c3:ad:b6:77:4e:a6:c9:c9:d3:cc: 35:fe:0c:33:8f:1b:1d:d5:0e:d4:7b:53:25:de:e5: af:33:9c:6c:e6:9a:1e:1a:a3:8a:48:a3:59:fd:24: fe:75:15:9c:02:72:c1:81:6a:95:e8:35:f4:7f:43: 4f:d8:cc:a0:16:ce:c3:53:4d:49:22:a6:25:19:ac: a3:aa:b6:27:db:30:ac:11:47:45:96:4e:bb:52:f0: ab:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AD:FF:5B:2E:99:E7:D9:31:0D:38:FF:7E:C3:E8:48:60:2A:9A:0C X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8d:29:de:43:9e:ad:78:16:12:a8:96:de:04:cc:08:a9:61: 2d:7d:0d:2c:27:5b:cf:b7:1b:51:96:89:48:b9:07:5c:12:1e: 8c:c3:44:40:3d:47:1e:e1:5b:60:c5:42:b9:23:c5:57:ad:f2: da:09:14:0e:65:1d:62:21:e8:3c:d9:9e:d4:96:51:bd:a3:3a: e2:15:3b:c6:7c:ee:5d:99:66:b9:c2:11:41:c9:4c:48:9f:7a: ff:27:e2:d3:07:16:d9:9d:92:17:95:83:1e:8a:07:8c:3b:f4: 4a:0b:24:ff:96:77:9d:ab:70:ca:3f:c3:c8:41:86:49:31:fe: b6:b9:5c:e4:fd:50:91:dd:30:54:50:af:70:72:ad:ec:19:c8: ce:52:da:8d:67:2e:d4:9e:c5:43:86:5e:df:32:59:96:5f:02: 4f:24:e7:dd:e4:7a:10:98:ce:3c:15:71:2c:b8:da:04:b1:93: b9:2d:9c:ea:f9:70:0b:72:da:30:69:0f:b3:7d:2b:11:57:6e: 4a:a6:c4:62:c2:be:6f:e8:3a:24:b4:b6:6c:4d:62:a8:b8:c3: 76:b0:b0:db:a2:d7:c9:60:4f:60:09:44:fd:eb:09:66:69:16: 98:03:de:2d:bd:a7:85:e9:00:be:00:90:8a:99:de:17:ec:65: 11:21:3a:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjQxMTIyMTYxMDI5WhcNMjQxMTI5MTYxMDI5WjAYMRYwFAYD VQQDEw02NzQwYWNmNS03NjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OMSNuKNms7CVbGLSD7JusXNxuM8aI8ZlBZs698k1ymikGdRalR805sw1PIo 2Sft15TIXXpsduMJTXj+wBQSP3wB9mSfG5p2yOTREOB6+kA/kXj54eZ5PWKa+frT 1dteckukcrm7hRDfVjWpRwbqf9G+iV7fSEcYfflpySMXVtYMWEEY4WKgeQMc9ieI /NOhsstmC/k2+4vtabh+4FGBH7kZwJ8nFPBcAMOttndOpsnJ08w1/gwzjxsd1Q7U e1Ml3uWvM5xs5poeGqOKSKNZ/ST+dRWcAnLBgWqV6DX0f0NP2MygFs7DU01JIqYl GayjqrYn2zCsEUdFlk67UvCruQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEit/1su mefZMQ04/37D6EhgKpoMMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtjSneQ56teBYSqJbeBMwIqWEtfQ0sJ1vPtxtRlolIuQdcEh6Mw0RA PUce4VtgxUK5I8VXrfLaCRQOZR1iIeg82Z7UllG9ozriFTvGfO5dmWa5whFByUxI n3r/J+LTBxbZnZIXlYMeigeMO/RKCyT/lnedq3DKP8PIQYZJMf62uVzk/VCR3TBU UK9wcq3sGcjOUtqNZy7UnsVDhl7fMlmWXwJPJOfd5HoQmM48FXEsuNoEsZO5LZzq +XALctowaQ+zfSsRV25KpsRiwr5v6DoktLZsTWKouMN2sLDbotfJYE9gCUT96wlm aRaYA94tvaeF6QC+AJCKmd4X7GURITqu -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org